$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/GpLNOgcOmxMXds57paQhPrUUITk.roa File: GpLNOgcOmxMXds57paQhPrUUITk.roa (raw, json) Hash identifier: 4QjSlgiKtmrzyaWCB+7kI9hGQ3nX5pIK2a/cynrtD4c= Subject key identifier: 1A:92:CD:3A:07:0E:9B:13:17:76:CE:7B:A5:A4:21:3E:B5:14:21:39 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0CE8 Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/GpLNOgcOmxMXds57paQhPrUUITk.roa Signing time: Mon 26 Aug 2024 05:12:49 +0000 ROA not before: Mon 26 Aug 2024 05:12:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 61.247.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3304 (0xce8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 26 05:12:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1A92CD3A070E9B131776CE7BA5A4213EB5142139 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:db:97:d6:fb:f2:c6:cf:96:7a:c5:64:8a:ab: ad:32:dd:27:17:1c:f4:e9:66:dd:91:20:b3:5a:81: 84:45:d6:e8:f5:5e:e5:b2:5e:46:54:4d:38:21:a5: e4:ca:bb:c8:4d:7c:08:3b:4b:f4:41:f7:b5:c3:1f: db:f1:78:71:1a:9c:88:ef:64:68:f6:f2:f9:b1:2f: fa:f5:3a:5b:c9:2f:93:af:7f:ef:40:7b:e7:5f:37: 6e:18:8c:8e:fc:07:36:bd:ca:74:fe:ca:6c:51:7d: a0:bd:97:42:aa:d7:55:fd:3e:2d:9f:d8:9b:0a:a4: c7:10:fd:9f:31:23:90:e1:38:cf:6f:fb:7c:8c:91: f2:c0:90:a8:b2:cc:ae:1b:a9:7c:1c:87:67:f5:f6: 4f:52:57:ad:bd:aa:c8:f8:79:82:c2:5d:ce:5a:c8: 82:2a:43:87:0a:51:50:7b:2c:8c:f4:ca:19:f6:5e: 6f:89:03:87:43:99:b1:3b:6b:a6:a5:57:5d:fc:ba: 2e:83:f7:47:83:21:0e:45:96:1f:28:6e:5b:ba:1b: 40:6f:52:c5:2d:53:36:e9:79:5b:08:18:b1:11:82: ec:0c:39:47:a9:3c:97:e5:eb:42:d1:db:d2:6d:23: 5a:bc:7d:01:87:26:2c:8a:2e:9f:ee:5d:60:34:82: d2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:92:CD:3A:07:0E:9B:13:17:76:CE:7B:A5:A4:21:3E:B5:14:21:39 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/GpLNOgcOmxMXds57paQhPrUUITk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.247.160.0/21 Signature Algorithm: sha256WithRSAEncryption 55:b3:eb:4a:66:38:96:e3:65:e6:b8:6c:a5:21:3e:90:f2:8e: 48:d5:f8:4f:dd:e1:62:33:21:5e:1c:d4:e8:f6:7b:15:26:53: cc:61:bf:e1:49:4a:6b:52:b3:84:72:04:8e:0f:8f:79:6e:7e: 83:ba:c5:99:70:e4:e7:dd:21:32:27:7d:66:c3:e2:66:71:6a: ab:8f:95:b6:33:d6:a4:cd:b6:d9:6e:21:8d:bf:c9:b1:d2:42: 06:a6:1d:26:93:fd:20:39:a8:99:9f:4a:05:26:51:8a:17:2c: 15:09:db:0c:52:6c:6f:4a:48:1e:81:50:de:70:e5:d5:bb:e8: f6:86:33:69:ce:eb:fd:3e:bd:5f:7b:d5:a9:d4:50:75:3d:06: 4a:c6:6f:c5:eb:5b:9f:83:80:87:4c:f4:48:6f:6c:d0:f0:5b: a4:53:45:a0:53:f8:f9:12:d1:fa:a8:61:9c:bc:84:96:34:71: 25:42:76:05:90:29:a9:0d:da:f6:30:d2:ff:4d:8f:1b:60:62: 1f:50:e4:bc:80:be:e2:98:04:a6:ec:c7:db:48:5d:97:f7:54: 68:12:37:5e:ed:0e:ee:0f:7d:13:ed:75:fe:44:d1:21:12:e3: b6:b3:0f:15:24:82:4e:5f:df:f7:a1:58:7d:3f:61:04:e0:7e: 72:c3:0c:78 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDOgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNDA4MjYw NTEyNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFBOTJDRDNBMDcwRTlC MTMxNzc2Q0U3QkE1QTQyMTNFQjUxNDIxMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+25fW+/LGz5Z6xWSKq60y3ScXHPTpZt2RILNagYRF1uj1XuWy XkZUTTghpeTKu8hNfAg7S/RB97XDH9vxeHEanIjvZGj28vmxL/r1OlvJL5Ovf+9A e+dfN24YjI78Bza9ynT+ymxRfaC9l0Kq11X9Pi2f2JsKpMcQ/Z8xI5DhOM9v+3yM kfLAkKiyzK4bqXwch2f19k9SV629qsj4eYLCXc5ayIIqQ4cKUVB7LIz0yhn2Xm+J A4dDmbE7a6alV138ui6D90eDIQ5Flh8oblu6G0BvUsUtUzbpeVsIGLERguwMOUep PJfl60LR29JtI1q8fQGHJiyKLp/uXWA0gtJFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUGpLNOgcOmxMXds57paQhPrUUITkwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL0dwTE5PZ2NPbXhNWGRzNTdw YVFoUHJVVUlUay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 96AwDQYJKoZIhvcNAQELBQADggEBAFWz60pmOJbjZea4bKUhPpDyjkjV+E/d4WIz IV4c1Oj2exUmU8xhv+FJSmtSs4RyBI4Pj3lufoO6xZlw5OfdITInfWbD4mZxaquP lbYz1qTNttluIY2/ybHSQgamHSaT/SA5qJmfSgUmUYoXLBUJ2wxSbG9KSB6BUN5w 5dW76PaGM2nO6/0+vV971anUUHU9BkrGb8XrW5+DgIdM9EhvbNDwW6RTRaBT+PkS 0fqoYZy8hJY0cSVCdgWQKakN2vYw0v9NjxtgYh9Q5LyAvuKYBKbsx9tIXZf3VGgS N17tDu4PfRPtdf5E0SES47azDxUkgk5f3/ehWH0/YQTgfnLDDHg= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:36 2024 by rpki-client on console-fra.rpki-client.org